Security update for ceph SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:1473-1 Final 1 1 2021-05-04T06:58:05Z current 2021-05-04T06:58:05Z 2021-05-04T06:58:05Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ceph This update for ceph fixes the following issues: - ceph was updated to 14.2.20-402-g6aa76c6815: * CVE-2021-20288: Fixed unauthorized global_id reuse (bsc#1183074). * CVE-2020-25678: Do not add sensitive information in Ceph log files (bsc#1178905). * CVE-2020-27839: Use secure cookies to store JWT Token (bsc#1179997). * mgr/dashboard: prometheus alerting: add some leeway for package drops and errors (bsc#1145463) * mon: have 'mon stat' output json as well (bsc#1174466) * rpm: ceph-mgr-dashboard recommends python3-saml on SUSE (bsc#1177200) * mgr/dashboard: Display a warning message in Dashboard when debug mode is enabled (bsc#1178235) * rgw: cls/user: set from_index for reset stats calls (bsc#1178837) * mgr/dashboard: Disable TLS 1.0 and 1.1 (bsc#1178860) * bluestore: provide a different name for fallback allocator (bsc#1180118) * test/run-cli-tests: use cram from github (bsc#1181378) * mgr/dashboard: fix 'Python2 Cookie module import fails on Python3' (bsc#1183487) * common: make ms_bind_msgr2 default to 'false' (bsc#1180594) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container caasp/v4/hyperkube:v1.17.17-2021-1473,SUSE-2021-1473,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-1473,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-1473,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-1473,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-1473,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-1473,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-1473,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-1473,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-1473,SUSE-Storage-6-2021-1473 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20211473-1/ Link for SUSE-SU-2021:1473-1 https://lists.suse.com/pipermail/sle-security-updates/2021-May/008721.html E-Mail link for SUSE-SU-2021:1473-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1145463 SUSE Bug 1145463 https://bugzilla.suse.com/1174466 SUSE Bug 1174466 https://bugzilla.suse.com/1177200 SUSE Bug 1177200 https://bugzilla.suse.com/1178235 SUSE Bug 1178235 https://bugzilla.suse.com/1178837 SUSE Bug 1178837 https://bugzilla.suse.com/1178860 SUSE Bug 1178860 https://bugzilla.suse.com/1178905 SUSE Bug 1178905 https://bugzilla.suse.com/1179997 SUSE Bug 1179997 https://bugzilla.suse.com/1180118 SUSE Bug 1180118 https://bugzilla.suse.com/1180594 SUSE Bug 1180594 https://bugzilla.suse.com/1181378 SUSE Bug 1181378 https://bugzilla.suse.com/1183074 SUSE Bug 1183074 https://bugzilla.suse.com/1183487 SUSE Bug 1183487 https://www.suse.com/security/cve/CVE-2020-25678/ SUSE CVE CVE-2020-25678 page https://www.suse.com/security/cve/CVE-2020-27839/ SUSE CVE CVE-2020-27839 page https://www.suse.com/security/cve/CVE-2021-20288/ SUSE CVE CVE-2021-20288 page Container caasp/v4/hyperkube:v1.17.17 SUSE Enterprise Storage 6 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS SUSE Linux Enterprise Server 15 SP1-BCL SUSE Linux Enterprise Server 15 SP1-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 librados2-14.2.20.402+g6aa76c6815-3.60.1 librbd1-14.2.20.402+g6aa76c6815-3.60.1 librgw2-14.2.20.402+g6aa76c6815-3.60.1 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 ceph-14.2.20.402+g6aa76c6815-3.60.1 ceph-base-14.2.20.402+g6aa76c6815-3.60.1 ceph-dashboard-e2e-14.2.20.402+g6aa76c6815-3.60.1 ceph-fuse-14.2.20.402+g6aa76c6815-3.60.1 ceph-grafana-dashboards-14.2.20.402+g6aa76c6815-3.60.1 ceph-mds-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-dashboard-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-diskprediction-cloud-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-diskprediction-local-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-k8sevents-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-rook-14.2.20.402+g6aa76c6815-3.60.1 ceph-mgr-ssh-14.2.20.402+g6aa76c6815-3.60.1 ceph-mon-14.2.20.402+g6aa76c6815-3.60.1 ceph-osd-14.2.20.402+g6aa76c6815-3.60.1 ceph-prometheus-alerts-14.2.20.402+g6aa76c6815-3.60.1 ceph-radosgw-14.2.20.402+g6aa76c6815-3.60.1 ceph-test-14.2.20.402+g6aa76c6815-3.60.1 cephfs-shell-14.2.20.402+g6aa76c6815-3.60.1 libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 librados-devel-14.2.20.402+g6aa76c6815-3.60.1 libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 rbd-fuse-14.2.20.402+g6aa76c6815-3.60.1 rbd-mirror-14.2.20.402+g6aa76c6815-3.60.1 rbd-nbd-14.2.20.402+g6aa76c6815-3.60.1 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of Container caasp/v4/hyperkube:v1.17.17 ceph-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-base-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-fuse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-grafana-dashboards-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-mds-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-mgr-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-mgr-dashboard-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-mgr-diskprediction-local-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-mgr-rook-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-mon-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-osd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-prometheus-alerts-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-radosgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 cephfs-shell-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 rbd-fuse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 rbd-mirror-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 rbd-nbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Enterprise Storage 6 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Proxy 4.0 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Retail Branch Server 4.0 ceph-common-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 librados-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 librados2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 librbd1-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 librgw2-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 python3-rados-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 as a component of SUSE Manager Server 4.0 A flaw was found in ceph in versions prior to 16.y.z where ceph stores mgr module passwords in clear text. This can be found by searching the mgr logs for grafana and dashboard, with passwords visible. CVE-2020-25678 Container caasp/v4/hyperkube:v1.17.17:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librados2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librbd1-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librgw2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-base-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-fuse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-grafana-dashboards-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mds-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-dashboard-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-diskprediction-local-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-rook-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mon-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-osd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-prometheus-alerts-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-radosgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:cephfs-shell-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-fuse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-mirror-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-nbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211473-1/ https://www.suse.com/security/cve/CVE-2020-25678.html CVE-2020-25678 https://bugzilla.suse.com/1178905 SUSE Bug 1178905 A flaw was found in ceph-dashboard. The JSON Web Token (JWT) used for user authentication is stored by the frontend application in the browser's localStorage which is potentially vulnerable to attackers via XSS attacks. The highest threat from this vulnerability is to data confidentiality and integrity. CVE-2020-27839 Container caasp/v4/hyperkube:v1.17.17:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librados2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librbd1-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librgw2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-base-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-fuse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-grafana-dashboards-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mds-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-dashboard-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-diskprediction-local-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-rook-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mon-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-osd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-prometheus-alerts-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-radosgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:cephfs-shell-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-fuse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-mirror-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-nbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211473-1/ https://www.suse.com/security/cve/CVE-2020-27839.html CVE-2020-27839 https://bugzilla.suse.com/1179997 SUSE Bug 1179997 An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requests, it doesn't sanitize other_keys, allowing key reuse. An attacker who can request a global_id can exploit the ability of any user to request a global_id previously associated with another user, as ceph does not force the reuse of old keys to generate new ones. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2021-20288 Container caasp/v4/hyperkube:v1.17.17:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librados2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librbd1-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:librgw2-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 Container caasp/v4/hyperkube:v1.17.17:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-base-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-fuse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-grafana-dashboards-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mds-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-dashboard-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-diskprediction-local-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mgr-rook-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-mon-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-osd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-prometheus-alerts-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:ceph-radosgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:cephfs-shell-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-fuse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-mirror-14.2.20.402+g6aa76c6815-3.60.1 SUSE Enterprise Storage 6:rbd-nbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-BCL:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server 15 SP1-LTSS:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Proxy 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Retail Branch Server 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:ceph-common-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libcephfs-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libcephfs2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librados-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librados2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:libradospp-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librbd-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librbd1-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librgw-devel-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:librgw2-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-ceph-argparse-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-cephfs-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rados-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rbd-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:python3-rgw-14.2.20.402+g6aa76c6815-3.60.1 SUSE Manager Server 4.0:rados-objclass-devel-14.2.20.402+g6aa76c6815-3.60.1 important 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211473-1/ https://www.suse.com/security/cve/CVE-2021-20288.html CVE-2021-20288 https://bugzilla.suse.com/1183074 SUSE Bug 1183074 https://bugzilla.suse.com/1205049 SUSE Bug 1205049